On Mon, 7 Aug 2000, Adrian Stovall wrote:
> Why doesn't IP/port based virtual hosting (say, 1.2.3.4:443,
> 1.2.3.4:11001,
> 1.2.3.4:11002, 1.2.3.4:11003, etc) work. Assuming you explicitly tell
> the
> client the port number with every link, what breaks SSL with this type of
> virtual host?
Because it works...
I had no problem defining two name-based SSL virtual hosts on two diferent
ports.
Here is my configuration (the relevant part for virtual hosts):
Listen 194.6.179.14:80
<IfDefine SSL>
Listen 194.6.179.14:443
Listen 194.6.179.14:8443
</IfDefine>
NameVirtualHost 194.6.179.14:80
<VirtualHost 194.6.179.14:80>
ServerName www.stud.isg.ch
</VirtualHost>
<VirtualHost 194.6.179.14:80>
ServerName www.cubic.ch
</VirtualHost>
<IfDefine SSL>
<VirtualHost 194.6.179.14:443>
ServerName www.stud.isg.ch
SSLEngine on
SSLCertificateFile /opt/apache/conf/ssl.crt/www.stud.isg.ch.crt
SSLCertificateKeyFile /opt/apache/conf/ssl.key/www.stud.isg.ch.key
</VirtualHost>
<VirtualHost 194.6.179.14:8443>
ServerName www.cubic.ch
SSLEngine on
SSLCertificateFile /opt/apache/conf/ssl.crt/www.cubic.ch.crt
SSLCertificateKeyFile /opt/apache/conf/ssl.key/www.cubic.ch.key
</VirtualHost>
</ifDefine>
So, I've got two name-based virtual hosts (same ip/port) for http and two
ssl virtual hosts
(same ip, different port) in my setup
You can try out https://www.stud.isg.ch and https://www.cubic.ch:8443 and
they
both return a different ceritficate.
nslookup www.stud.isg.ch and www.cubic.ch will return the same ip address
Bye
Tim
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
